Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Quick way to deny large ip list access
Hi,
recently we viewed in our logs a large number of attempts to gain remote access from a bunch of different ip addresses. In Checkpoint it's possible to quickly block a large amount of ip addresses by doing something like 'fwaccel dos deny -l filename'.
Is there something similar in Fortigate (Forti Manager)? We're running 7.0.12 btw.
__PRESENT
Labels:
- Labels:
-
FortiGate
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello
May be one of the possible solution is the IP threat feed (you need to host it on some web server):
On other solution, if these IP addresses are known as bad IPs, to create a firewall rule to deny traffic from "ISDB > Sources with reputation 1".
AEK
AEK
